Skip to content

[DBOPS-3] Updated SQL code style to match our current codebase #648

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. Weโ€™ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mkincaid-bw merged 10 commits into from
Aug 26, 2025
+368 โˆ’11
Merged

[DBOPS-3] Updated SQL code style to match our current codebase #648

Changes from 2 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
9cd0990
Updated SQL code style to mostly match our current codebase
mkincaid-bw Aug 13, 2025
796ce3e
Ran prettier
mkincaid-bw Aug 13, 2025
8ed2354
Update SQL code formatting standards and conventions
mkincaid-bw Aug 20, 2025
cd06ac9
Ran prettier
mkincaid-bw Aug 20, 2025
7f7a430
Fixed type-o
mkincaid-bw Aug 20, 2025
346a9d0
Merge branch 'main' into sql-formatting-updates
mkincaid-bw Aug 20, 2025
ae9e145
Made requested changes
mkincaid-bw Aug 25, 2025
bd22c7c
Merge branch 'main' into sql-formatting-updates
mkincaid-bw Aug 25, 2025
7b6ba0e
Changed header capitalization style
mkincaid-bw Aug 25, 2025
724450f
Minor changes
mkincaid-bw Aug 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
341 changes: 337 additions & 4 deletions docs/contributing/code-style/sql.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,20 +4,60 @@ toc_max_heading_level: 4

# T-SQL

## Repositories
## Overview

We use the [Repository pattern][repository] with the MSSQL repositories being written using
[Dapper][dapper]. Each repository method in turn calls a _Stored Procedure_, which primarily fetches
data from _Views_.

## Deployment scripts
## File Organization

### Directory Structure

- **Schema-based organization**: Files are organized by domain/schema (Auth, Billing,
SecretsManager, Vault, etc.)
- **Object type grouping**: Within each domain, files are grouped by type:
- `Tables/` - Table definitions
- `Views/` - View definitions
- `Stored Procedures/` - Stored procedure definitions
- `Functions/` - User-defined functions
- **Root-level objects**: Common objects are placed directly in `dbo/`:
- `Stored Procedures/` - General stored procedures
- `Tables/` - Core tables
- `Views/` - General views
- `User Defined Types/` - Custom data types

### File Naming Conventions

- **Stored Procedures**: `{EntityName}_{Action}.sql` (e.g., `User_Create.sql`,
`Organization_ReadById.sql`)
- **Tables**: `{EntityName}.sql` (e.g., `User.sql`, `Organization.sql`)
- **Views**: `{EntityName}View.sql` or `{EntityName}{Purpose}View.sql` (e.g., `UserView.sql`,
`OrganizationUserUserDetailsView.sql`)
- **Functions**: `{EntityName}{Purpose}.sql` (e.g., `UserCollectionDetails.sql`)
- **User Defined Types**: `{TypeName}.sql` (e.g., `GuidIdArray.sql`)

## Deployment Scripts

There are specific ways deployment scripts should be structured. The goal for these standards is to
ensure that the scripts should be re-runnable. We never intend to run scripts multiple times on an
environment, but the scripts should support it.

### Tables

#### Naming Conventions

- **Table Names**: PascalCase (e.g., `[dbo].[User]`, `[dbo].[AuthRequest]`)
- **Column Names**: PascalCase (e.g., `[Id]`, `[CreationDate]`, `[MasterPasswordHash]`)
- **Primary Keys**: `PK_{TableName}` (e.g., `[PK_User]`, `[PK_Organization]`)
- **Foreign Keys**: `FK_{TableName}_{ReferencedTable}` or `FK_{TableName}_{ColumnName}` (e.g.,
`[FK_AuthRequest_User]`)
- \*PROPOSED: **Foreign Keys**: `FK_{TableName}_{ColumnName}__{ReferencedTable}_{ReferencedColumn}`
(e.g., `FK_Device_UserId__User_Id`)
- **Note**: Constraint name limits: SQL Server (128 chars), PostgreSQL (63 chars), MySQL (64
chars), SQLite (unlimited)
- **Default Constraints**: `DF_{TableName}_{ColumnName}` (e.g., `[DF_Organization_UseScim]`)

#### Creating a table

When creating a table, you must first check if the table exists:
Expand All @@ -27,13 +67,33 @@ IF OBJECT_ID('[dbo].[{table_name}]') IS NULL
BEGIN
CREATE TABLE [dbo].[{table_name}] (
[Id] UNIQUEIDENTIFIER NOT NULL,
...
CONSTRAINT [PK_{table_name}] PRIMARY KEY CLUSTERED ([Id] ASC)
[Column1] DATATYPE NOT NULL,
[Column2] DATATYPE NULL,
[CreationDate] DATETIME2(7) NOT NULL,
[RevisionDate] DATETIME2(7) NOT NULL,
CONSTRAINT [PK_{table_name}] PRIMARY KEY CLUSTERED ([Id] ASC),
CONSTRAINT [FK_{table_name}_{referenced_table}] FOREIGN KEY ([ForeignKeyColumn]) REFERENCES [dbo].[ReferencedTable] ([Id])
);
END
GO
```

##### Column Definition Standards

- **Alignment**: Column names, data types, and nullability vertically aligned using spaces
- **Data Types**: Use consistent type patterns:
- `UNIQUEIDENTIFIER` for IDs
- `DATETIME2(7)` for timestamps
- `NVARCHAR(n)` for Unicode text
- `VARCHAR(n)` for ASCII text
- `BIT` for boolean values
- `TINYINT`, `SMALLINT`, `INT`, `BIGINT` for integers
- **Nullability**: Explicitly specify `NOT NULL` or `NULL`
- **Standard Columns**: Most tables include:
- `[Id] UNIQUEIDENTIFIER NOT NULL` - Primary key
- `[CreationDate] DATETIME2(7) NOT NULL` - Record creation timestamp
- `[RevisionDate] DATETIME2(7) NOT NULL` - Last modification timestamp

#### Deleting a table

When deleting a table, use `IF EXISTS` to avoid an error if the table doesn't exist.
Expand Down Expand Up @@ -140,6 +200,23 @@ GO

### Views

#### Naming Conventions

- **View Names**:
- `{EntityName}View`
- Used when the view maps closely to a single table, with little or no joins. (e.g., (e.g.,
`[dbo].[ApiKeyView]`) (from ApiKey))
- `{EntityName}DetailsView` for complex views
- Used for views that combine multiple tables or add logic beyond a basic table select. These
usually serve a specific display or reporting use case and are named to reflect the context.
(e.g., `[dbo].[OrganizationUserDetailsView]`)

- For more complex reads that join multiple tables:
- Create a view with a clear name tied to the main entity:
- `[dbo].[OrganizationUser_MemberAccessDetailsView]`
- Create a stored procedure that reads from it:
- `[dbo].[OrganizationUser_ReadMemberAccessDetails]`

#### Creating or modifying a view

We recommend using the `CREATE OR ALTER` syntax for adding or modifying a view.
Expand Down Expand Up @@ -179,6 +256,14 @@ GO

### Functions and stored procedures

#### Naming Conventions

- **Stored Procedures**: `{EntityName}_{Action}` format (e.g., `[dbo].[User_ReadById]`)
- EntityName: The main table or concept (e.g. User, Organization, Cipher)
- Action: What the procedure does (e.g. Create, ReadById, DeleteMany)
- **Parameters**: Start with `@` and use PascalCase (e.g., `@UserId`, `@OrganizationId`)
- **OUTPUT parameters**: Explicitly declare with `OUTPUT` keyword

#### Creating or modifying a function or stored procedure

We recommend using the `CREATE OR ALTER` syntax for adding or modifying a function or stored
Expand Down Expand Up @@ -218,6 +303,254 @@ CREATE NONCLUSTERED INDEX [IX_OrganizationUser_UserIdOrganizationIdStatus]
WITH (ONLINE = ON); -- ** THIS ENSURES ONLINE **
```

#### Naming Conventions

- **Indexes**: `IX_{TableName}_{ColumnName(s)}` (e.g., `[IX_User_Email]`)
- The name should clearly indicate the table and the columns being indexed.

#### Index Best Practices

- Create indexes after table definition with `GO` separator
- Use descriptive names following `IX_{TableName}_{ColumnName}` pattern
- Include `INCLUDE` clause when beneficial for covering indexes
- Use filtered indexes with `WHERE` clause when appropriate
- Consider `ONLINE = ON` for production deployments on heavily used tables

## General Naming Conventions

### Schema and Object Prefixes

- **Schema**: Use `[dbo]` prefix for all objects
- **Object names**: Always use square brackets `[dbo].[TableName]`

### User Defined Types

- **User Defined Types**: `{TypeName}.sql` (e.g., `GuidIdArray.sql`)

## Code Formatting Standards

### General Formatting

The adage **`code is written once and read many times`** is one reason that creating easily readable
code is very important. Once a developer has acclimated to the conventions and style in this
document, they will be able to efficiently read any similarly written code by other developers.

- **Indentation**: Use 4 spaces (not tabs) for all code files, including SQL
- **Keywords**: Use UPPERCASE for all SQL keywords (`CREATE`, `SELECT`, `FROM`, `WHERE`, `GROUP BY`,
`ORDER BY`, `JOIN`, `ON`, `INTO`, `TOP`, etc.)
- **Object names**: Always use square brackets `[dbo].[TableName]`
- **Line endings**: Use consistent line breaks with proper indentation
- **Trailing spaces**: Should be trimmed from the end of lines. Use `[ \t]+$` as a regex
find/replace
- **Vertical lists**: Vertically list items as much as feasibly possible, and use consistent
indentation to make vertical listing quick and easy. A vertical list is much easier to compare and
makes code changes easily detectable
- **Whitespace**: Place one space, unless more are needed for good alignment, after each separating
character, such as `+ - * / = & | %` and commas
- **Blank lines**: Separate sections of code with at least one blank line
- **Commas**: Commas should be placed at the right end of the line
- **Join clauses and logical operators**: Should be placed at the right end of the line

### Stored Procedures

#### Basic Structure

```sql
CREATE PROCEDURE [dbo].[EntityName_Action]
@Parameter1 DATATYPE,
@Parameter2 DATATYPE = NULL,
@Parameter3 DATATYPE OUTPUT
AS
BEGIN
SET NOCOUNT ON

-- Procedure logic here

END
```

#### Parameter Declaration

- One parameter per line
- Align parameters with consistent indentation (4 spaces after procedure name)
- Default values on same line as parameter
- OUTPUT parameters clearly marked

#### SELECT Statements

- `SELECT` keyword on its own line
- Column names indented (4 spaces)
- One column per line for multi-column selects
- `FROM` clause on separate line, aligned with `SELECT`
- `JOIN` clauses indented to align with table names
- `WHERE` clause on separate line, aligned with `FROM`

```sql
SELECT
U.[Id],
U.[Name],
U.[Email],
OU.[OrganizationId]
FROM
[dbo].[User] U
INNER JOIN
[dbo].[OrganizationUser] OU ON U.[Id] = OU.[UserId]
WHERE
U.[Enabled] = 1
```

#### INSERT Statements

- Column list in parentheses, one column per line
- VALUES clause with parameters aligned
- Proper indentation for readability

```sql
INSERT INTO [dbo].[TableName]
(
[Column1],
[Column2],
[Column3]
)
VALUES
(
@Parameter1,
@Parameter2,
@Parameter3
)
```

#### UPDATE Statements

- `UPDATE` and table name on same line
- `SET` clause with each column assignment on separate line
- `WHERE` clause clearly separated

```sql
UPDATE
[dbo].[TableName]
SET
[Column1] = @Parameter1,
[Column2] = @Parameter2,
[Column3] = @Parameter3
WHERE
[Id] = @Id
```

### Views

#### Simple Views

```sql
CREATE VIEW [dbo].[ViewName]
AS
SELECT
*
FROM
[dbo].[TableName]
```

#### Complex Views

```sql
CREATE VIEW [dbo].[ComplexViewName]
AS
SELECT
T1.[Column1],
T1.[Column2],
T2.[Column3],
CASE
WHEN T1.[Status] = 1
THEN 'Active'
ELSE 'Inactive'
END [StatusText]
FROM
[dbo].[Table1] T1
LEFT JOIN
[dbo].[Table2] T2 ON T1.[Id] = T2.[ForeignId]
WHERE
T1.[Enabled] = 1
```

### Functions

#### Naming Conventions

- **Function Names**: `[Schema].[FunctionName]` (e.g., `[dbo].[UserCollectionDetails]`).
- The name should describe what the function returns

#### Table-Valued Functions

```sql
CREATE FUNCTION [dbo].[FunctionName](@Parameter DATATYPE)
RETURNS TABLE
AS RETURN
SELECT
Column1,
Column2,
CASE
WHEN Condition
THEN Value1
ELSE Value2
END [ComputedColumn]
FROM
[dbo].[TableName]
WHERE
[FilterColumn] = @Parameter
```

### User Defined Types

- **Naming**: `[Schema].[TypeName]` (e.g., `[dbo].[GuidIdArray]`).
- The name should describe the type.

```sql
CREATE TYPE [dbo].[TypeName] AS TABLE (
[Column1] DATATYPE NOT NULL,
[Column2] DATATYPE NOT NULL
);
```

## Common Patterns

### CRUD Operations

- **Create**: `{EntityName}_Create` procedures
- **Read**: `{EntityName}_ReadById`, `{EntityName}_ReadBy{Criteria}` procedures
- **Update**: `{EntityName}_Update` procedures
- **Delete**: `{EntityName}_DeleteById`, `{EntityName}_Delete` procedures

### Parameter Patterns

- `@Id UNIQUEIDENTIFIER` for entity identifiers
- `@UserId UNIQUEIDENTIFIER` for user references
- `@OrganizationId UNIQUEIDENTIFIER` for organization references
- `@CreationDate DATETIME2(7)` and `@RevisionDate DATETIME2(7)` for timestamps

### Error Handling

- Use `SET NOCOUNT ON` in stored procedures
- Implement appropriate transaction handling where needed
- Follow consistent error reporting patterns

## Comments and Documentation

- Use `--` for single-line comments
- Add comments for complex business logic and the reason for a command or block of code
- Document magic numbers and status codes (e.g., `-- 2 = Confirmed`)
- Provide brief explanations for complex CASE statements or calculations
- Don't comment unnecessarily, such as commenting that an insert statement is about to be executed

## Best Practices

1. **Consistency**: Follow established patterns throughout the codebase
2. **Readability**: Prioritize code readability and maintainability
3. **Performance**: Consider index usage and query optimization
4. **Security**: Use parameterized queries and proper data type validation
5. **Modularity**: Break complex operations into smaller, reusable procedures
6. **Standards**: Always use qualified object names with schema prefix
7. **Versioning**: Use descriptive procedure names for different versions (e.g., `_V2` suffix)

[repository]:
https://docs.microsoft.com/en-us/dotnet/architecture/microservices/microservice-ddd-cqrs-patterns/infrastructure-persistence-layer-design
[dapper]: https://github.com/DapperLib/Dapper